$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/bgmLUGmX078BJbN2i8kL5sd1wG8.roa File: bgmLUGmX078BJbN2i8kL5sd1wG8.roa (raw, json) Hash identifier: IedYe0D1QF4tDFpeScJMnC7+Pit9tuZzaAcHIHpHi7k= Subject key identifier: 6E:09:8B:50:69:97:D3:BF:01:25:B3:76:8B:C9:0B:E6:C7:75:C0:6F Certificate issuer: /CN=4091DB5A6EA03B760F54E090CB909873AE33F649 Certificate serial: 026A Authority key identifier: 40:91:DB:5A:6E:A0:3B:76:0F:54:E0:90:CB:90:98:73:AE:33:F6:49 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/bgmLUGmX078BJbN2i8kL5sd1wG8.roa Signing time: Wed 15 Apr 2026 03:25:41 +0000 ROA not before: Wed 15 Apr 2026 03:25:41 +0000 ROA not after: Wed 30 Dec 2026 15:30:20 +0000 asID: 152612 IP address blocks: 144.79.236.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 00:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 618 (0x26a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4091DB5A6EA03B760F54E090CB909873AE33F649 Validity Not Before: Apr 15 03:25:41 2026 GMT Not After : Dec 30 15:30:20 2026 GMT Subject: CN=6E098B506997D3BF0125B3768BC90BE6C775C06F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d4:10:dc:9d:0f:c9:ce:90:4d:31:35:8b:4f: 87:ff:12:24:4a:22:7c:9c:98:cf:fb:77:b2:a4:df: 47:24:f2:39:7e:51:61:77:51:49:65:5b:ed:62:ac: 1d:9d:b0:83:0b:28:77:8b:10:31:50:a1:5f:d0:a3: a8:69:a6:03:d5:16:79:1e:c1:fb:5e:2d:f1:3a:5d: 7d:77:80:aa:68:74:e0:35:b9:d1:6d:bb:42:ad:fd: 60:26:cd:6b:f1:8b:fd:e7:3e:70:a7:53:87:c2:c2: 03:24:f3:31:20:ba:c4:c9:bb:9e:d4:38:03:ca:6e: 02:f1:87:1a:fa:5c:79:18:f0:a4:d9:50:76:df:2d: da:b1:53:64:9c:c7:bf:24:de:20:ed:6a:d8:fd:70: 48:c4:50:64:09:1c:f8:5b:01:6c:31:a2:e5:60:34: 1f:90:ac:8e:c7:aa:01:cc:51:9c:ae:2d:86:de:4c: a8:71:b7:eb:d4:7d:6b:70:b8:0f:97:c9:b2:6d:38: 71:d5:89:c3:2b:4d:cc:d4:db:ba:cf:17:28:b2:88: ae:a6:9b:ed:83:93:46:8b:92:21:11:c3:d2:c2:5f: 9d:57:1f:15:6a:92:62:2e:1f:b4:49:33:61:26:9a: 50:59:2f:da:26:58:a2:65:0f:89:58:ee:76:9d:51: d4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:09:8B:50:69:97:D3:BF:01:25:B3:76:8B:C9:0B:E6:C7:75:C0:6F X509v3 Authority Key Identifier: keyid:40:91:DB:5A:6E:A0:3B:76:0F:54:E0:90:CB:90:98:73:AE:33:F6:49 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/QJHbWm6gO3YPVOCQy5CYc64z9kk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QJHbWm6gO3YPVOCQy5CYc64z9kk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/bgmLUGmX078BJbN2i8kL5sd1wG8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 144.79.236.0/24 Signature Algorithm: sha256WithRSAEncryption 58:e9:76:c3:03:ec:1f:32:5a:5a:c9:95:cb:66:66:24:74:c0: e4:d9:e0:8c:3e:16:4d:ec:94:37:d7:69:f7:49:b0:be:c4:c2: 93:45:58:84:b3:40:f5:0a:9f:b5:f2:57:fa:0e:bf:e1:40:19: 78:c9:4c:7c:ca:a0:0c:6e:3b:9a:5c:4e:76:3c:15:5f:31:a9: a7:4e:29:33:2b:39:65:4c:93:03:e5:52:5b:9d:6a:08:45:d1: dc:36:99:99:18:97:1d:b7:dd:4f:44:85:14:16:32:46:27:56: a9:52:66:e4:a8:14:d2:c3:44:6f:5a:bc:af:71:f6:d1:b1:cf: 8e:d9:20:8a:95:f4:84:53:f9:c8:80:3e:88:5e:d3:99:0a:de: 85:1d:c0:a6:d3:8d:1e:c5:24:cc:81:e8:f0:df:d5:30:57:3f: db:c0:be:0e:0d:57:34:54:53:87:8a:9a:91:81:64:2a:f1:5d: 34:22:1c:fd:c1:63:7d:d4:32:a8:b4:79:62:87:04:25:7a:6d: 36:f5:1b:96:49:37:0d:51:29:33:bf:cf:91:50:91:62:9f:2d: 83:85:31:b7:9a:35:a3:5a:4f:82:c3:6f:40:e4:7f:fe:89:6e: 26:5c:13:e2:4f:5f:86:8a:40:5d:2d:1d:c0:ce:bd:f1:12:57: 1a:46:88:ea -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA5 MURCNUE2RUEwM0I3NjBGNTRFMDkwQ0I5MDk4NzNBRTMzRjY0OTAeFw0yNjA0MTUw MzI1NDFaFw0yNjEyMzAxNTMwMjBaMDMxMTAvBgNVBAMTKDZFMDk4QjUwNjk5N0Qz QkYwMTI1QjM3NjhCQzkwQkU2Qzc3NUMwNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZ1BDcnQ/JzpBNMTWLT4f/EiRKInycmM/7d7Kk30ck8jl+UWF3 UUllW+1irB2dsIMLKHeLEDFQoV/Qo6hppgPVFnkewfteLfE6XX13gKpodOA1udFt u0Kt/WAmzWvxi/3nPnCnU4fCwgMk8zEgusTJu57UOAPKbgLxhxr6XHkY8KTZUHbf LdqxU2Scx78k3iDtatj9cEjEUGQJHPhbAWwxouVgNB+QrI7HqgHMUZyuLYbeTKhx t+vUfWtwuA+XybJtOHHVicMrTczU27rPFyiyiK6mm+2Dk0aLkiERw9LCX51XHxVq kmIuH7RJM2EmmlBZL9omWKJlD4lY7nadUdR/AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUbgmLUGmX078BJbN2i8kL5sd1wG8wHwYDVR0jBBgwFoAUQJHbWm6gO3YPVOCQ y5CYc64z9kkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU9URVJO RVQvUUpIYldtNmdPM1lQVk9DUXk1Q1ljNjR6OWtrLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9RSkhiV202Z08zWVBWT0NReTVDWWM2NHo5a2suY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BT1RFUk5FVC9iZ21MVUdtWDA3OEJK Yk4yaThrTDVzZDF3Rzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAkE/sMA0GCSqGSIb3DQEBCwUAA4IBAQBY6XbDA+wfMlpayZXLZmYkdMDk2eCM PhZN7JQ312n3SbC+xMKTRViEs0D1Cp+18lf6Dr/hQBl4yUx8yqAMbjuaXE52PBVf MamnTikzKzllTJMD5VJbnWoIRdHcNpmZGJcdt91PRIUUFjJGJ1apUmbkqBTSw0Rv WryvcfbRsc+O2SCKlfSEU/nIgD6IXtOZCt6FHcCm040exSTMgejw39UwVz/bwL4O DVc0VFOHipqRgWQq8V00Ihz9wWN91DKotHlihwQlem029RuWSTcNUSkzv8+RUJFi ny2DhTG3mjWjWk+Cw29A5H/+iW4mXBPiT1+GikBdLR3Azr3xElcaRojq -----END CERTIFICATE-----Generated at Fri Apr 17 23:54:13 2026 by rpki-client